Application No.: 09/890,587 



Docket No.: 11345/034001 



AMENDMENTS TO THE CLAIMS 

Please amend the claims as follows. 

1. (Previously Presented) A method of encryption of data in a digital television system 
communicated between a first decoder and a portable security module, wherein at least one 
precalculated key pair is stored in a memory of the first decoder, said at least one key pair 
comprising a session key and an encrypted version of the session key prepared using a 
transport key, the encrypted version of the session key being subsequently communicated to 
the portable security module which decrypts the encrypted version using an equivalent 
transport key stored in its memory such that data communicated from at least the portable 
security module to the first decoder may thereafter be encrypted and decrypted by the session 
key. 

2. (Previously Presented) A method as claimed in claim 1, in which a plurality of key pairs are 
stored in the memory of the first decoder, the first decoder selecting and processing at least 
one session key to generate a definitive session key and communicating the associated 
encrypted version of said at least one session key to the portable security module for 
decryption and processing by the portable security module to generate the definitive session 
key. 

3. (Previously Presented) A method as claimed in claim 2 in which a subset of a plurality of 
stored session keys is chosen by the first decoder to generate the definitive session key, the 
associated encrypted versions of the subset of session keys being communicated to the 
portable security module for decryption and processing. 

4. (Previously Presented) A method as claimed in claim 2, in which the order of combination of 
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a plurality of session keys used to generate the definitive session key is communicated from 
the first decoder to the portable security module. 

5. (Previously Presented) A method as claimed in claim 4 in which an initial session key value 
known to both the first decoder and the portable security module is repeatedly encrypted in 
both devices by an ordered sequence of session keys using an encryption algorithm sensitive 
to the order of encryption. 

6. (Previously Presented) A method as claimed in claim 1 in which said at least one 
precalculated key pair is selected from a larger set of precalculated key pairs prior to being 
stored in the first decoder. 

7. (Previously Presented) A method as claimed in claim 1 in which the encrypted version of a 
session key communicated to the portable security module also includes a signature value 
readable by the portable security module to verify the authenticity of the encrypted version 
of the session key. 

8. (Previously Presented) A method as claimed in claim 1 in which an algorithm and transport 
key used to encrypt and decrypt a session key correspond to a symmetric algorithm and 
associated symmetric key. 

9. (Previously Presented) A method as claimed in claim 1 in which an encryption algorithm 
used with a session key to encrypt and decrypt data communicated between the first decoder 
and the portable security module corresponds to a symmetric algorithm. 

10. (Canceled) 

11. (Canceled) 

3 



Application No.: 09/890,587 Docket No.: 1 1345/034001 

12. (Previously Presented) A method as claimed in claim 1, in which the portable security 
module corresponds to one of a smart card and a conditional access module. 

13. (Previously Presented) A method as claimed in claim 1, in which the first decoder 
corresponds to a conditional access module and the portable security module corresponds to 
a smart card. 

14. (Currently Amended) A method as claimed in claim 1[[0]], in which data encrypted and 
decrypted with [[a]] the session key corresponds to control word data. 

15. (Currently Amended) A method as claimed in claim 1[[0]], in which data encrypted and 
decrypted with [[a]] the session key corresponds to descrambled broadcast data. 

16. (Canceled) 

17. (Previously Presented) A method as claimed in claim 1 as applied to a home network system, 
wherein the first decoder and the portable security module correspond to consumer electronic 
devices adapted to transfer data via a communication link. 

18. (Canceled) 

19. (Canceled) 

20. (Canceled) 

21. (Previously Presented) A digital television system for providing secure communication of 
data between a first decoder and a portable security module, said first decoder comprising a 
memory for storing at least one precalculated key pair comprising a session key and an 
encrypted version of the session key prepared using a transport key, and communication 
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means for communicating the encrypted version of the session key to said portable security 
module, said portable security module comprising a memory for storing an equivalent 
transport key, decryption means for decrypting said encrypted version of the session key 
using said equivalent transport key, and means for encrypting data to be communicated to 
said first decoder using said session key. 

22. (Previously Presented) A system as claimed in claim 21, wherein the memory of the first 
decoder is adapted to store a plurality of key pairs, the first decoder comprising means for 
selecting and processing at least one session key to generate a definitive session key said 
communication means being adapted to communicate the associated encrypted version of 
said at least one session key to the portable security module, said portable security module 
comprising means for processing said at least one session key to generate the definitive 
session key. 

23. (Previously Presented) A system as claimed in claim 21, in which the encrypted version of a 
session key includes a signature value readable by the portable security module to verify the 
authenticity of the encrypted version of the session key. 

24. (Previously Presented) A system as claimed in claim 21, in which an algorithm and transport 
key used to encrypt and decrypt a session key correspond to a symmetric algorithm and 
associated symmetric key. 

25. (Previously Presented) A system as claimed in claim 21, in which an encryption algorithm 
used with a session key to encrypt and decrypt data communicated between the first decoder 
and the portable security module corresponds to a symmetric algorithm. 

26. (Canceled) 
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27. (Canceled) 

28. (Previously Presented) A system as claimed in claim 21, in which the portable security 
module corresponds to one of a smart card and a conditional access module. 

29. (Canceled) 

30. (Canceled) 

31. (Previously Presented) A system as claimed in claim 21 as applied to a home network 
system, wherein the first decoder and the portable security module correspond to consumer 
electronic devices adapted to transfer data via a communication link. 

32. -33. (Canceled) 
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